EasyManuals Logo

HPE FlexNetwork 5510 HI Series Security Configuration Guide

HPE FlexNetwork 5510 HI Series
551 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #33 background imageLoading...
Page #33 background image
20
Step
Command
Remarks
password
provides the correct username and
passes attribute checks. To
enhance
security, configure a
password for each local user.
In FIPS mode, only
password-protected users can pass
authentication.
4. Assign services to the
local user.
• For a network access user:
service-type { lan-access |
portal }
•
For a device management
user:
ï‚¡ In non-FIPS mode:
service-type { ftp | { http |
https | ssh | telnet |
terminal } * }
ï‚¡ In FIPS mode:
service-type { https | ssh
| terminal } *
By default, no service is authorized
to a local user.
5. (Optional.) Place the local
user to the active or
blocked state.
state
{
active
|
block
}
By default, a created local user is in
active state and can request
network services.
6. (Optional.) Set the upper
limit of concurrent logins
using the local user
name.
access-limit
max-user-number
By default, the number of concurrent
logins is not limited
for the local
user.
This command
takes effect only
when local accounting is configured
for the local user. It does not apply to
FTP, SFTP, or SCP users, who do
not support accounting.
7. (Optional.) Configure
binding attributes for the
local user.
bind-attribute
{
ip
ip-address |
location
interface
interface-type
interface-number |
mac
mac-address |
vlan
vlan-id } *
By default, no
binding attribute is
configured for a local user.
Binding attribute
ip
applies only to
LAN users using 802.1X.
Binding attributes
location
,
mac
,
and
vlan
apply only to LAN and
portal users.
8. (Optional.) Configure
authorization attributes
for the local user.
authorization-attribute
{
acl
acl-number |
idle-cut
minute |
user-profile
profile-name |
user-role
role-name |
vlan
vlan-id |
work-directory
directory-name } *
The following default settings apply:
• The working directory for FTP,
SFTP,
and SCP users is the
root directory of the NAS.
However, the users do not
have permission to access the
root directory.
• The network-operator user role
is assigned to local users that
are created by a
network-admin or level-15
user.
9. (Optional.) Configure
password control
attributes for the local
user.
• Set the password aging time:
password-control aging
aging-time
• Set
the minimum password
length:
password-
control length
length
Optional.
By default, the local user uses
password control attributes of the
user group to which the local user
belongs.
Only device management users
support the password control

Table of Contents

Other manuals for HPE FlexNetwork 5510 HI Series

Preview: Configuration Guide
Configuration Guide572 pages
Preview: Fundamentals Configuration Guide
Fundamentals Configuration Guide209 pages
Preview: Layer 3 - Ip Routing Configuration Guide
Layer 3 - Ip Routing Configuration Guide486 pages
Preview: Network Management And Monitoring Configuration Guide
Network Management And Monitoring Configuration Guide331 pages
Preview: Macsec Configuration Guide
Macsec Configuration Guide27 pages
Preview: Acl And Qos Configuration Guide
Acl And Qos Configuration Guide114 pages
Preview: Mpls Configuration Guide
Mpls Configuration Guide505 pages
Preview: Openflow Configuration Guide
Openflow Configuration Guide39 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HPE FlexNetwork 5510 HI Series and is the answer not in the manual?

HPE FlexNetwork 5510 HI Series Specifications

General IconGeneral
BrandHPE
ModelFlexNetwork 5510 HI Series
CategorySwitch
LanguageEnglish

Related product manuals